[dev] [tofikwest] tofik/fix-dependabot-check-status

[github-actions]

This is an automated pull request to merge tofik/fix-dependabot-check-status into dev.
It was created by the [Auto Pull Request] action.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
app	Ready	Preview, Comment	Mar 2, 2026 7:47pm

1 Skipped Deployment

Project	Deployment	Actions	Updated (UTC)
portal	Skipped		Mar 2, 2026 7:47pm

[cursor]

PR Summary

Medium Risk
Changes the pass/fail logic for the Dependabot check by switching to a different GitHub API endpoint and adding a new paused/unknown state, which can alter compliance results across repositories.

Overview
Updates the Dependabot check to stop relying on repo.security_and_analysis and instead query GitHub’s /repos/{owner}/{repo}/automated-security-fixes endpoint to determine security-updates status.

Adds explicit handling for paused (reported as pass with a different message) and unknown (reported as fail with guidance about missing admin access), and adjusts evidence to record dependabot_security_updates.status while still including the alert summary/counts when available.

^{Written by Cursor Bugbot for commit a4e6528. This will update automatically on new commits. Configure here.}

[cursor]

Cursor Bugbot has reviewed your changes and found 1 potential issue.

^{Bugbot Autofix is OFF. To automatically fix reported issues with cloud agents, enable autofix in the Cursor dashboard.}

[claudfuen]

🎉 This PR is included in version 1.87.0 🎉

The release is available on GitHub release

Your semantic-release bot 📦🚀